github-starred/libxlsxwriter
2
0
Fork 0
mirror of https://github.com/jmcnamara/libxlsxwriter.git synced 2026-05-15 14:15:54 -06:00
Code Issues 16 Projects Packages Wiki Activity Actions

[GH-ISSUE #418] OSSFuzz integration #329

New issue
Closed
opened 2026-05-05 12:09:29 -06:00 by gitea-mirror · 6 comments
gitea-mirror commented 2026-05-05 12:09:29 -06:00
Owner
Copy link

Originally created by @capuanob on GitHub (Nov 12, 2023).
Original GitHub issue: https://github.com/jmcnamara/libxlsxwriter/issues/418

Hello,

I worked with @ennamarie19 in the OSS-Fuzz integration for the Python API to XlsxWriter (here. I was wondering if you would be open to a harness being developed and proposed to the OSS-Fuzz committee for the C API as well. If so, I will handle the integration and development of the harness. Would you like the same e-mail used for any defects / bugs discovered in the fuzzing process?

Thank you for your consideration!

Originally created by @capuanob on GitHub (Nov 12, 2023). Original GitHub issue: https://github.com/jmcnamara/libxlsxwriter/issues/418 Hello, I worked with @ennamarie19 in the OSS-Fuzz integration for the Python API to XlsxWriter ([here](https://github.com/jmcnamara/XlsxWriter/pull/1030). I was wondering if you would be open to a harness being developed and proposed to the OSS-Fuzz committee for the C API as well. If so, I will handle the integration and development of the harness. Would you like the same e-mail used for any defects / bugs discovered in the fuzzing process? Thank you for your consideration!
gitea-mirror commented 2026-05-05 12:09:35 -06:00
Author
Owner
Copy link

@jmcnamara commented on GitHub (Nov 13, 2023):

Hi.

Yes I am fine with that. You can use the same email address. Try to use the dev directory again if possible.

Thanks for the effort.

BTW, has there been any issues flagged in the Python version yet? I didn't get any emails.

<!-- gh-comment-id:1807314955 --> @jmcnamara commented on GitHub (Nov 13, 2023): Hi. Yes I am fine with that. You can use the same email address. Try to use the dev directory again if possible. Thanks for the effort. BTW, has there been any issues flagged in the Python version yet? I didn't get any emails.
gitea-mirror commented 2026-05-05 12:09:36 -06:00
Author
Owner
Copy link

@capuanob commented on GitHub (Nov 14, 2023):

@jmcnamara Thank you very much! I'll be sure to use the dev directory and keep instrumentation optional in the build system.

As for bugs, nothing has popped yet. On that note, do you have any ideas for new, potential entry-points for testing that we could add to increase coverage and uncover bugs?

<!-- gh-comment-id:1809394771 --> @capuanob commented on GitHub (Nov 14, 2023): @jmcnamara Thank you very much! I'll be sure to use the dev directory and keep instrumentation optional in the build system. As for bugs, nothing has popped yet. On that note, do you have any ideas for new, potential entry-points for testing that we could add to increase coverage and uncover bugs?
gitea-mirror commented 2026-05-05 12:09:37 -06:00
Author
Owner
Copy link

@jmcnamara commented on GitHub (Nov 15, 2023):

@capuanob

This is probably a question I should have asked earlier but what are your motivations and goals for doing this work?

<!-- gh-comment-id:1813406996 --> @jmcnamara commented on GitHub (Nov 15, 2023): @capuanob This is probably a question I should have asked earlier but what are your motivations and goals for doing this work?
gitea-mirror commented 2026-05-05 12:09:38 -06:00
Author
Owner
Copy link

@capuanob commented on GitHub (Nov 16, 2023):

I studied cybersecurity with a focus in binary exploitation and became
familiar with fuzz-testing in that process. I’m interested in a future
career working in fuzzing, so I contribute to OSSFuzz in my free time for
open-sourced projects to build up a portfolio and experience.

Thank You, Bailey Capuano

<!-- gh-comment-id:1813718726 --> @capuanob commented on GitHub (Nov 16, 2023): I studied cybersecurity with a focus in binary exploitation and became familiar with fuzz-testing in that process. I’m interested in a future career working in fuzzing, so I contribute to OSSFuzz in my free time for open-sourced projects to build up a portfolio and experience. Thank You, Bailey Capuano
gitea-mirror commented 2026-05-05 12:09:39 -06:00
Author
Owner
Copy link

@jmcnamara commented on GitHub (Nov 16, 2023):

@capuanob That is cool. You will probably have better luck fuzzing this C based project (although I have used a reasonable amount of defensive programming). If you contact me offline I can suggest some attack surfaces: jmcnamara @ cpan.org

<!-- gh-comment-id:1814637845 --> @jmcnamara commented on GitHub (Nov 16, 2023): @capuanob That is cool. You will probably have better luck fuzzing this C based project (although I have used a reasonable amount of defensive programming). If you contact me offline I can suggest some attack surfaces: jmcnamara @ cpan.org
gitea-mirror commented 2026-05-05 12:09:40 -06:00
Author
Owner
Copy link

@capuanob commented on GitHub (Nov 17, 2023):

@jmcnamara Thank you very much! I reached out to you

<!-- gh-comment-id:1815545401 --> @capuanob commented on GitHub (Nov 17, 2023): @jmcnamara Thank you very much! I reached out to you
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
coverity
cmake-improvements
cmake_pkgconfig_fix
ctest
button
tables
autofilter
dtoa
iwyu
openssl
gentoo
gh310
condition_format
rich_string_html
header_footer_images
custom_data_labels
object_position
gh265
constant_mode_comments2
constant_mode_comments
vml
md5
vcpkg
hyperlinks
api_refactor
win_fopen
gh203
rich_strings
chartsheet
in_mem_image
gh192
revert-162-master
data_validation
meson
charts
scan_build
utf8_strlen
tmpfileplus
custom_properties
insert_image
default_row
control_chars
worksheet_protect
dev
red_black
panes
mkstemp
defined_names
optimise
wip
v1.2.4
v1.2.3
v1.2.2
v1.2.1
v1.2.0
v1.1.9
v1.1.8
RELEASE_1.1.7
RELEASE_1.1.6
RELEASE_1.1.5
RELEASE_1.1.4
RELEASE_1.1.3
RELEASE_1.1.2
RELEASE_1.1.1
RELEASE_1.1.0
RELEASE_1.0.9
RELEASE_1.0.8
RELEASE_1.0.7
RELEASE_1.0.6
RELEASE_1.0.5
RELEASE_1.0.4
RELEASE_1.0.3
RELEASE_1.0.2
RELEASE_1.0.1
RELEASE_1.0.0
RELEASE_0.9.9
RELEASE_0.9.8
RELEASE_0.9.7
RELEASE_0.9.6
RELEASE_0.9.5
RELEASE_0.9.4
RELEASE_0.9.3
RELEASE_0.9.2
RELEASE_0.9.1
RELEASE_0.9.0
RELEASE_0.8.9
RELEASE_0.8.8
RELEASE_0.8.7
RELEASE_0.8.6
RELEASE_0.8.5
RELEASE_0.8.4
RELEASE_0.8.3
RELEASE_0.8.2
RELEASE_0.8.1
RELEASE_0.8.0
RELEASE_0.7.9
RELEASE_0.7.8
RELEASE_0.7.7
RELEASE_0.7.6
RELEASE_0.7.5
RELEASE_0.7.4
RELEASE_0.7.3
RELEASE_0.7.2
RELEASE_0.7.1
RELEASE_0.7.0
RELEASE_0.6.9
RELEASE_0.6.8
RELEASE_0.6.7
RELEASE_0.6.6
RELEASE_0.6.5
RELEASE_0.6.4
RELEASE_0.6.3
RELEASE_0.6.2
RELEASE_0.6.1
RELEASE_0.6.0
RELEASE_0.5.9
RELEASE_0.5.8
RELEASE_0.5.7
RELEASE_0.5.6
RELEASE_0.5.5
RELEASE_0.5.4
RELEASE_0.5.3
RELEASE_0.5.2
RELEASE_0.5.1
RELEASE_0.5.0
RELEASE_0.4.9
RELEASE_0.4.8
RELEASE_0.4.7
RELEASE_0.4.6
RELEASE_0.4.5
RELEASE_0.4.4
RELEASE_0.4.3
RELEASE_0.4.2
RELEASE_0.4.1
RELEASE_0.4.0
RELEASE_0.3.9
RELEASE_0.3.8
RELEASE_0.3.7
RELEASE_0.3.6
RELEASE_0.3.5
RELEASE_0.3.4
RELEASE_0.3.3
RELEASE_0.3.2
RELEASE_0.3.1
RELEASE_0.3.0
RELEASE_0.2.9
RELEASE_0.2.8
RELEASE_0.2.7
RELEASE_0.2.6
RELEASE_0.2.5
RELEASE_0.2.4
RELEASE_0.2.3
RELEASE_0.2.2
RELEASE_0.2.1
RELEASE_0.2.0
RELEASE_0.1.9
RELEASE_0.1.8
RELEASE_0.1.7
RELEASE_0.1.6
RELEASE_0.1.5
RELEASE_0.1.4
RELEASE_0.1.3
RELEASE_0.1.2
RELEASE_0.1.1
RELEASE_0.1.0
RELEASE_0.0.9
RELEASE_0.0.8
RELEASE_0.0.7
RELEASE_0.0.6
RELEASE_0.0.5
RELEASE_0.0.4
RELEASE_0.0.3
RELEASE_0.0.2
RELEASE_0.0.1
Labels
Clear labels   
awaiting user feedback

   
bug

   
cmake

   
cmake

   
docs

   
feature request

   
in progress

   
long term

   
medium term

   
medium term

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question

   
ready to close

   
short term

   
under investigation

   
wontfix
No labels
awaiting user feedback
bug
cmake
cmake
docs
feature request
in progress
long term
medium term
medium term
pull-request
question
question
ready to close
short term
under investigation
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/libxlsxwriter#329
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?